LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-29-2011, 03:04 PM   #1
hagcomcol
LQ Newbie
 
Registered: Mar 2011
Distribution: RHEL ES 5, 6
Posts: 6

Rep: Reputation: 0
Problems with VNCServer console and Citrix Xenserver


Hope this is the right place... here goes.

Our college has Citrix XenCenter Enterprise and we have several RHEL ES 5.6 servers running now for various student and administrative functions. We know that XenCenter and the RHEL templates use vncserver as the root graphical console "0". We found, quite by accident, that we can also access the console "0" from an external VNC client with no password. This leaves us quite vulnerable. I've looked through all of the man pages and online to find a way to restrict access to console "0" from the local guest VM only and not from the world. I want to keep console "1" for use externally, though.

Does anyone have any ideas on now to accomplish this?
 
Old 04-18-2011, 07:28 PM   #2
dariusb12
LQ Newbie
 
Registered: Feb 2011
Posts: 9

Rep: Reputation: 1
Scott,

One way to do this might be to restrict port 5900 on your host machine. VNC uses this for console 0 (and 5901 for console 1, 5902 for console 2, and so on). So you could do some stuff with your firewall to prevent the outside world from getting through to port 5900. If for some reason you don't wanna do that with port 5900, then you can also fire up your Xen instances and specify which ports you'd like to use for VNC.

So basically the idea is just do what you like restricting/granting etc. just by playing with your firewall configuration. Hope that helps.
 
Old 04-26-2011, 11:11 AM   #3
hagcomcol
LQ Newbie
 
Registered: Mar 2011
Distribution: RHEL ES 5, 6
Posts: 6

Original Poster
Rep: Reputation: 0
It Kinda Worked...

I did as you suggested but in doing so I locked out the GUI console in XenCenter for that VM as well. As a temporary workaround, I went into the login options and disabled the more sensitive menu options (Reboot, Shutdown) so they would not be available in case anyone found console zero.

Any more suggestions guy and girls?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Citrix XenServer or Xen on CentOS grob115 Linux - Virtualization and Cloud 3 06-10-2010 02:57 PM
Citrix Xenserver 5.5 | Broadcom 57780 Kernel cookieavenue Linux - Server 1 05-24-2010 10:05 AM
[SOLVED] Network Bonding Citrix Xenserver al_bye Linux - Networking 9 04-22-2010 03:37 PM
Ubuntu 8.04 on Citrix XenServer 5.5.0 memory ... error? cadeyrn Linux - General 0 08-17-2009 11:50 AM
Citrix XenServer free crashmeister Linux - General 1 03-02-2009 03:34 PM


All times are GMT -5. The time now is 02:50 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration